diff options
| author | Jaime Martinez <jmartinez@gitlab.com> | 2021-08-10 06:19:06 +0300 |
|---|---|---|
| committer | Jaime Martinez <jmartinez@gitlab.com> | 2021-08-10 06:19:06 +0300 |
| commit | 029392ffad5c5533cdc916422b88711e31be1bfe (patch) | |
| tree | abd42c80770649e9041f9147db2a12142300b412 | |
| parent | dc2500d0a6e06b3e762902996867d70246173523 (diff) | |
| parent | 990eb1fc3f49f265d60172e85aaabe2deffe66c5 (diff) | |
Merge branch 'fix/memory-leak' into 'master'
fix: close response body and fix memory leak
See merge request gitlab-org/gitlab-pages!537
| -rw-r--r-- | internal/artifact/artifact.go | 2 | ||||
| -rw-r--r-- | internal/auth/auth.go | 21 |
2 files changed, 17 insertions, 6 deletions
diff --git a/internal/artifact/artifact.go b/internal/artifact/artifact.go index 64156589..eff46ba7 100644 --- a/internal/artifact/artifact.go +++ b/internal/artifact/artifact.go @@ -97,6 +97,8 @@ func (a *Artifact) makeRequest(w http.ResponseWriter, r *http.Request, reqURL *u return } + defer resp.Body.Close() + if additionalHandler(resp) { return } diff --git a/internal/auth/auth.go b/internal/auth/auth.go index 7307d668..d4298702 100644 --- a/internal/auth/auth.go +++ b/internal/auth/auth.go @@ -393,6 +393,8 @@ func (a *Auth) fetchAccessToken(code string) (tokenResponse, error) { return token, err } + defer resp.Body.Close() + if resp.StatusCode != 200 { err = errResponseNotOk errortracking.Capture(err, errortracking.WithRequest(req)) @@ -400,7 +402,6 @@ func (a *Auth) fetchAccessToken(code string) (tokenResponse, error) { } // Parse response - defer resp.Body.Close() err = json.NewDecoder(resp.Body).Decode(&token) if err != nil { return token, err @@ -507,16 +508,24 @@ func (a *Auth) checkAuthentication(w http.ResponseWriter, r *http.Request, domai req.Header.Add("Authorization", "Bearer "+session.Values["access_token"].(string)) resp, err := a.apiClient.Do(req) - if err == nil && checkResponseForInvalidToken(resp, session, w, r) { + if err != nil { + logRequest(r).WithError(err).Error("Failed to retrieve info with token") + errortracking.Capture(err) + // call serve404 handler when auth fails + domain.ServeNotFoundAuthFailed(w, r) return true } - if err != nil || resp.StatusCode != 200 { - if err != nil { - logRequest(r).WithError(err).Error("Failed to retrieve info with token") - } + defer resp.Body.Close() + + if checkResponseForInvalidToken(resp, session, w, r) { + return true + } + if resp.StatusCode != http.StatusOK { // call serve404 handler when auth fails + logRequest(r).WithField("status", resp.Status).Error("Unexpected response fetching access token") + errortracking.Capture(fmt.Errorf("unexpected response fetching access token status: %d", resp.StatusCode)) domain.ServeNotFoundAuthFailed(w, r) return true } |